Board members get emails asking them for tax information or requesting bank transfers. They also get phishing emails specifically targeting them as board members. Board members use personal email accounts to handle communications so they don’t get mixed with the emails from companies where they work. Many users have the same login credentials for their email accounts as they do for other websites. The challenge is getting board members to use a proprietary application that needs to be installed on an iPad, or personal computer, a tablet or a personal computer.”]
Source: https://www.csoonline.com/article/3085492/spearphishing-attacks-target-boards.html